$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/KuM9sn8t2tLKrOdMrLcXPx3GeI8.roa File: KuM9sn8t2tLKrOdMrLcXPx3GeI8.roa (raw, json) Hash identifier: 5+T3fICIfOCjtKAlxkn4bYVmGQQoreKlu2CzQbppheM= Subject key identifier: 2A:E3:3D:B2:7F:2D:DA:D2:CA:AC:E7:4C:AC:B7:17:3F:1D:C6:78:8F Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0625 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KuM9sn8t2tLKrOdMrLcXPx3GeI8.roa Signing time: Thu 29 Feb 2024 01:38:37 +0000 ROA not before: Thu 29 Feb 2024 01:38:37 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 9605 IP address blocks: 1.72.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1573 (0x625) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Feb 29 01:38:37 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=2AE33DB27F2DDAD2CAACE74CACB7173F1DC6788F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:50:04:f8:ef:16:96:4b:06:06:12:6c:3f:f4: 72:3b:9c:c7:08:d7:3c:67:75:19:50:37:65:55:e1: fd:2f:e6:2b:1e:7e:64:bf:e0:df:11:ed:63:5c:82: a1:e3:c9:b3:14:eb:21:f6:57:89:29:84:98:25:bb: 16:e1:ce:1d:26:18:d0:69:f2:76:37:b3:a5:0d:53: c0:13:de:db:dc:9b:3f:0d:96:b4:5a:fc:82:53:22: cc:9f:a3:7c:2e:fa:23:08:ad:c6:5b:aa:78:1e:fd: f8:86:dc:ae:7a:2a:a9:f8:50:bc:a3:db:a8:f6:f2: f0:1e:75:21:30:f2:e9:ee:68:28:44:d4:21:03:23: 2d:95:e6:d4:87:c2:ef:fe:f6:a4:09:30:9f:4e:26: dc:69:91:2c:b5:ab:d7:c8:8b:c7:1e:30:d9:3e:7c: 0c:59:89:c8:99:ce:51:72:b3:b4:cc:3a:b2:98:3f: fe:d4:99:73:a2:32:7d:d5:33:41:3a:cc:44:4f:f5: 4f:53:5a:a0:26:24:e2:e2:48:b0:95:a9:14:d8:60: 4f:f0:0d:0f:bd:7d:3a:a5:4d:77:3c:0a:01:71:e5: da:f4:b4:b1:4c:e6:34:59:37:60:ad:fa:dd:28:fa: bd:d6:f6:2d:d9:96:de:da:e1:6b:1f:be:ed:30:27: a2:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:E3:3D:B2:7F:2D:DA:D2:CA:AC:E7:4C:AC:B7:17:3F:1D:C6:78:8F X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KuM9sn8t2tLKrOdMrLcXPx3GeI8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.8.0/24 Signature Algorithm: sha256WithRSAEncryption 21:7e:fe:63:0c:26:8b:16:90:81:5f:31:17:84:1c:90:c4:32: b5:a6:80:3d:fe:1a:69:3d:70:5d:39:2b:35:74:21:45:31:d5: fe:ce:cd:ec:6d:29:1d:5d:0e:e9:9f:16:58:78:b8:77:1f:0d: 14:57:45:5f:8d:f2:67:7f:53:f8:13:ba:f1:1e:4b:22:14:5f: 89:46:37:e1:32:1d:ac:a1:a1:b1:e0:4e:bf:b2:0a:90:31:cc: 87:aa:0c:2a:58:5b:f6:82:3d:a8:e4:78:aa:e7:0b:5d:66:c8: 45:43:fc:9c:99:18:ab:66:4e:9c:b0:49:46:21:fc:8c:45:67: 20:77:8f:7a:8a:ad:5a:50:6c:1a:3d:56:f3:f1:bc:a8:53:04: a6:a0:72:69:ac:eb:b4:c3:b4:5e:1d:8f:0f:8e:a7:32:9b:4f: 3a:ba:d2:2a:57:bd:04:69:f2:69:dd:9e:6e:ff:c8:94:2d:2c: b3:66:95:1e:69:bd:61:bc:2a:1e:11:cb:d2:c1:b8:0a:a1:f2: a5:2f:8a:e5:4a:5d:15:12:d5:d4:80:2c:3f:81:88:c7:94:77: 77:89:52:16:52:2e:78:00:68:6c:f1:98:bc:b9:2a:da:73:4a: e1:00:95:89:bd:70:8c:73:8e:27:a6:37:8e:86:9e:7a:4e:1d: fd:67:f0:4f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBiUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDAyMjkw MTM4MzdaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKDJBRTMzREIyN0YyRERB RDJDQUFDRTc0Q0FDQjcxNzNGMURDNjc4OEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqUAT47xaWSwYGEmw/9HI7nMcI1zxndRlQN2VV4f0v5isefmS/ 4N8R7WNcgqHjybMU6yH2V4kphJgluxbhzh0mGNBp8nY3s6UNU8AT3tvcmz8NlrRa /IJTIsyfo3wu+iMIrcZbqnge/fiG3K56Kqn4ULyj26j28vAedSEw8unuaChE1CED Iy2V5tSHwu/+9qQJMJ9OJtxpkSy1q9fIi8ceMNk+fAxZiciZzlFys7TMOrKYP/7U mXOiMn3VM0E6zERP9U9TWqAmJOLiSLCVqRTYYE/wDQ+9fTqlTXc8CgFx5dr0tLFM 5jRZN2Ct+t0o+r3W9i3Zlt7a4Wsfvu0wJ6KHAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUKuM9sn8t2tLKrOdMrLcXPx3GeI8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0t1TTlzbjh0MnRMS3JPZE1yTGNYUHgzR2VJOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABSAgwDQYJKoZIhvcNAQELBQADggEBACF+/mMMJosWkIFfMReEHJDEMrWm gD3+Gmk9cF05KzV0IUUx1f7OzextKR1dDumfFlh4uHcfDRRXRV+N8md/U/gTuvEe SyIUX4lGN+EyHayhobHgTr+yCpAxzIeqDCpYW/aCPajkeKrnC11myEVD/JyZGKtm TpywSUYh/IxFZyB3j3qKrVpQbBo9VvPxvKhTBKagcmms67TDtF4djw+OpzKbTzq6 0ipXvQRp8mndnm7/yJQtLLNmlR5pvWG8Kh4Ry9LBuAqh8qUviuVKXRUS1dSALD+B iMeUd3eJUhZSLngAaGzxmLy5KtpzSuEAlYm9cIxzjiemN46GnnpOHf1n8E8= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:00 2024 by rpki-client on console-fra.rpki-client.org